#!/bin/bash
#
#  Copyright (C) 2012 Luiz Angelo Daros de Luca
#
#  This script is packaged with barnyard2.
#
#  This script is free software: you can redistribute it and/or modify
#  it under the terms of the GNU General Public License as published by
#  the Free Software Foundation, either version 3 of the License, or
#  (at your option) any later version.
#
#  This script is distributed in the hope that it will be useful,
#  but WITHOUT ANY WARRANTY; without even the implied warranty of
#  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
#  GNU General Public License for more details.
#
#  You should have received a copy of the GNU General Public License
#  along with Bash.  If not, see <http://www.gnu.org/licenses/>
#
### BEGIN INIT INFO
# Provides:          barnyard2
# Required-Start:    $network $remote_fs
# Should-Start:      
# Required-Stop:     $network $remote_fs
# Should-Stop:       
# Default-Start:     3 5
# Default-Stop:	     0 1 2 6
# Short-Description: Barnyard2 is an output processor for snort
# Description:       Barnyard2 is an output processor for snort
### END INIT INFO

# Check for missing binaries (stale symlinks should not happen)
# Note: Special treatment of stop for LSB conformance
BARNYARD2_BIN=/usr/bin/barnyard2
test -x $BARNYARD2_BIN || { echo "$BARNYARD2_BIN not installed"; 
	if [ "$1" = "stop" ]; then exit 0;
	else exit 5; fi; }

# Check for existence of needed config file and read it
BARNYARD2_CONFIG=/etc/sysconfig/barnyard2
test -r $BARNYARD2_CONFIG || { echo "$BARNYARD2_CONFIG not existing";
	if [ "$1" = "stop" ]; then exit 0;
	else exit 6; fi; }

# Read config	
. $BARNYARD2_CONFIG

if [ "$CONF"X = "X" ]; then
    CONF="/etc/snort/barnyard2.conf"
fi

if [ "$UNIFIED2_LOG_DIR"X = "X" ]; then
    UNIFIED2_LOG_DIR="/var/log/snort/"
fi

if [ "$BARNYARD2_LOG_DIR"X = "X" ]; then
    BARNYARD2_LOG_DIR="/var/log/barnyard2"
fi

if [ "$UNIFIED2_LOG_FILE"X = "X" ]; then
    UNIFIED2_LOG_FILE="snort_unified.log"
fi

BARNYARD2_PID=/var/run/barnyard2_NULL.pid

if [ "$BARNYARD2_USER"X = "X" ]; then
    BARNYARD2_USER=snort
fi
if [ "$BARNYARD2_GROUP"X = "X" ]; then
    BARNYARD2_GROUP=snort
fi
if [ "$BARNYARD2_ARCHIVE"X = "X" ]; then
    BARNYARD2_ARCHIVE="/var/log/barnyard2/archive"
fi


# Source LSB init functions
# providing start_daemon, killproc, pidofproc, 
# log_success_msg, log_failure_msg and log_warning_msg.
# This is currently not used by UnitedLinux based distributions and
# not needed for init scripts for UnitedLinux only. If it is used,
# the functions from rc.status should not be sourced or used.
#. /lib/lsb/init-functions

# Shell functions sourced from /etc/rc.status:
#      rc_check         check and set local and overall rc status
#      rc_status        check and set local and overall rc status
#      rc_status -v     be verbose in local rc status and clear it afterwards
#      rc_status -v -r  ditto and clear both the local and overall rc status
#      rc_status -s     display "skipped" and exit with status 3
#      rc_status -u     display "unused" and exit with status 3
#      rc_failed        set local and overall rc status to failed
#      rc_failed <num>  set local and overall rc status to <num>
#      rc_reset         clear both the local and overall rc status
#      rc_exit          exit appropriate to overall rc status
#      rc_active        checks whether a service is activated by symlinks
. /etc/rc.status

# Reset status of this service
rc_reset

# Return values acc. to LSB for all commands but status:
# 0	  - success
# 1       - generic or unspecified error
# 2       - invalid or excess argument(s)
# 3       - unimplemented feature (e.g. "reload")
# 4       - user had insufficient privileges
# 5       - program is not installed
# 6       - program is not configured
# 7       - program is not running
# 8--199  - reserved (8--99 LSB, 100--149 distrib, 150--199 appl)
# 
# Note that starting an already running service, stopping
# or restarting a not-running service as well as the restart
# with force-reload (in case signaling is not supported) are
# considered a success.

case "$1" in
    start)
	echo -n "Starting Barnyard2 Engine "
	## Start daemon with startproc(8). If this fails
	## the return value is set appropriately by startproc.

	mkdir -p "$BARNYARD2_LOG_DIR"
	chown $BARNYARD2_USER:$BARNYARD2_GROUP "$BARNYARD2_LOG_DIR"
	mkdir -p "$BARNYARD2_ARCHIVE"
	chown $BARNYARD2_USER:$BARNYARD2_GROUP "$BARNYARD2_ARCHIVE"

	WALDO_FILE="$UNIFIED2_LOG_DIR/barnyard2.waldo"
        /sbin/startproc -p $BARNYARD2_PID $BARNYARD2_BIN -c $CONF -a "$BARNYARD2_ARCHIVE" -d "$UNIFIED2_LOG_DIR" -w "$WALDO_FILE" -f "$UNIFIED2_LOG_FILE" -X "$PIDFILE $EXTRA_ARGS" -u $BARNYARD2_USER -g $BARNYARD2_GROUP -l "$BARNYARD2_LOG_DIR" -D
	# Remember status and be verbose
	rc_status -v
	;;
    stop)
	echo -n "Shutting down Barnyard2 Engine "
	## Stop daemon with killproc(8) and if this fails
	## killproc sets the return value according to LSB.

	/sbin/killproc -p $BARNYARD2_PID $BARNYARD2_BIN

	# Remember status and be verbose
	rc_status -v
	;;
    try-restart|condrestart)
	## Do a restart only if the service was active before.
	## Note: try-restart is now part of LSB (as of 1.9).
	## RH has a similar command named condrestart.
	if test "$1" = "condrestart"; then
		echo "${attn} Use try-restart ${done}(LSB)${attn} rather than condrestart ${warn}(RH)${norm}"
	fi
	$0 status
	if test $? = 0; then
		$0 restart
	else
		rc_reset	# Not running is not a failure.
	fi
	# Remember status and be quiet
	rc_status
	;;
    restart)
	## Stop the service and regardless of whether it was
	## running or not, start it again.
	$0 stop
	$0 start

	# Remember status and be quiet
	rc_status
	;;
    force-reload)
	## Signal the daemon to reload its config. Most daemons
	## do this on signal 1 (SIGHUP).
	## If it does not support it, restart the service if it
	## is running.

	echo -n "Reload service Barnyard2 Engine "
	## if it supports it:
	/sbin/killproc -p $BARNYARD2_PID -HUP $BARNYARD2_BIN
	#touch /var/run/BARNYARD2.pid
	rc_status -v

	## Otherwise:
	#$0 try-restart
	#rc_status
	;;
    reload)
	## Like force-reload, but if daemon does not support
	## signaling, do nothing (!)

	# If it supports signaling:
	echo -n "Reload service Barnyard2 Engine "
	/sbin/killproc -p $BARNYARD2_PID -HUP $BARNYARD2_BIN
	#touch /var/run/BARNYARD2.pid
	rc_status -v
	
	## Otherwise if it does not support reload:
	#rc_failed 3
	#rc_status -v
	;;
    status)
	echo -n "Checking for service Barnyard2 Engine "
	## Check status with checkproc(8), if process is running
	## checkproc will return with exit status 0.

	# Return value is slightly different for the status command:
	# 0 - service up and running
	# 1 - service dead, but /var/run/  pid  file exists
	# 2 - service dead, but /var/lock/ lock file exists
	# 3 - service not running (unused)
	# 4 - service status unknown :-(
	# 5--199 reserved (5--99 LSB, 100--149 distro, 150--199 appl.)
	
	# NOTE: checkproc returns LSB compliant status values.
	/sbin/checkproc -p $BARNYARD2_PID $BARNYARD2_BIN
	# NOTE: rc_status knows that we called this init script with
	# "status" option and adapts its messages accordingly.
	rc_status -v
	;;
    probe)
	## Optional: Probe for the necessity of a reload, print out the
	## argument to this init script which is required for a reload.
	## Note: probe is not (yet) part of LSB (as of 1.9)

	test "$CONFIGURATION" -nt /var/run/BARNYARD2.pid && echo reload
	;;
    *)
	echo "Usage: $0 {start|stop|status|try-restart|restart|force-reload|reload|probe}"
	exit 1
	;;
esac
rc_exit
